CNNVD-202508-2737 Information

CNNVD ID

CNNVD-202508-2737

Related CVE

CVE-2025-50733

• CNNVD Published: 2025-08-22

Description (Chinese)

NextChat是NextChat开源的一个用于快速部署私人 ChatGPT 网页应用的项目。 NextChat存在安全漏洞，该漏洞源于HTMLPreview组件未正确清理用户影响的HTML，可能导致执行任意JavaScript代码。

Description (English)

NextChat is a project for the rapid deployment of a private ChatGPT web-based application for NextChat. NextChat had a security loophole, which stemmed from the failure of the HTMLPreview component to properly clean up the user-impact HTML, which could lead to the implementation of any JavaScript code.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

NextChat

Published

2025-08-22

Last Modified

2026-02-24

References

https://hackmd.io/@fai1424/BkgqMnNxgl https://github.com/fai1424/Vulnerability-Research/blob/main/CVE-2025-50733/README.md https://nvd.nist.gov/vuln/detail/CVE-2025-50733 https://access.redhat.com/security/cve/cve-2025-50733